Critical authentication bypass and high-severity command injection vulnerabilities have been patched in Moxa’s MXsecurity product.
The post Moxa Patches MXsecurity Vulnerabilities That Could Be Exploited in OT Attacks appeared first on SecurityWeek.
Adobe is inviting security researchers to join its private bug bounty program on the HackerOne platform.
The post Adobe Inviting Researchers to Private Bug Bounty Program appeared first on SecurityWeek.
Faronics patches critical-severity remote code execution (RCE) vulnerabilities in the Insight education software.
The post Critical Vulnerabilities Found in Faronics Education Software appeared first on SecurityWeek.
Chrome 114 stable brings 18 security fixes, including 13 for vulnerabilities reported by external researchers.
The post Chrome 114 Released With 18 Security Fixes appeared first on SecurityWeek.
A decade-old critical vulnerability in Jetpack was force-patched on five million WordPress sites over the past few days.
The post Millions of WordPress Sites Patched Against Critical Jetpack Vulnerability appeared first on SecurityWeek.
The recently discovered Barracuda zero-day vulnerability CVE-2023-2868 has been exploited to deliver malware and steal data since at least October 2022.
The post Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery appeared first on SecurityWeek.
Multiple vulnerabilities in PrinterLogic’s enterprise management printer solution could expose organizations to various types of attacks.
The post Many Vulnerabilities Found in PrinterLogic Enterprise Software appeared first on SecurityWeek.
A Mirai botnet has been exploiting a recently patched vulnerability tracked as CVE-2023-28771 to hack many Zyxel firewalls.
The post Zyxel Firewalls Hacked by Mirai Botnet appeared first on SecurityWeek.
GitLab CE/EE version 16.0.1 patches a critical arbitrary file read vulnerability tracked as CVE-2023-2825.
The post GitLab Security Update Patches Critical Vulnerability appeared first on SecurityWeek.
Barracuda Networks is warning customers about CVE-2023-2868, a zero-day exploited to hack some Email Security Gateway (ESG) appliances.
The post Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances appeared first on SecurityWeek.
